Free Access ISACA.CISM.v2022-06-26.q752 Practice Test (Page 130)

Question 641

Which of the following is the PRIMARY responsibility of the information security steering committee?

A.Reviewing business cases where benefits have not been realized

B.Developing and presenting business cases for security initiatives

C.Identifying risks associated with new security initiatives

D.Developing security policies aligned with the corporate and IT strategies

Question 642

Which of the following documents would be the BEST reference to determine whether access control mechanisms are appropriate for a critical application?

A.User security procedures

B.Business process flow

C.IT security policy

D.Regulatory requirements

Question 643

An information security manager reviewing firewall rules will be MOST concerned if the firewall allows:

A.source routing.

B.broadcast propagation.

C.unregistered ports.

D.nonstandard protocols.

Question 644

An organization is about to purchase a rival organization. The PRIMARY reason for performing information security due diligence prior to making the purchase is to:

A.ensure compliance with international standards.

B.determine the security exposures.

C.evaluate the security policy and standards.

D.assess the ability to integrate the security department operations.

Question 645

An information security manager has been tasked with developing materials to update the board, regulatory agencies, and the media about a security incident. Which of the following should the information security manager do FIRST?

A.Invoke the organization's incident response plan.

B.Set up communication channels for the target audience.

C.Determine the needs and requirements of each audience.

D.Create a comprehensive singular communication.

Other Version: 1042ISACA.CISM.v2025-02-21.q785; 619ISACA.CISM.v2024-12-21.q371; 15491ISACA.CISM.v2022-03-24.q890; 79ISACA.Prepawayete.CISM.v2021-09-22.by.maxine.303q.pdf

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 151Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 165TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 173PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 151Salesforce.Data-Architect.v2025-09-05.q216; 147Adobe.AD0-E605.v2025-09-05.q50

Question 641

Question 642

Question 643

Question 644

Question 645

Download PDF File